Warning: Permanently added '10.128.0.164' (ECDSA) to the list of known hosts. executing program [ 64.400152][ T6906] ntfs: (device loop0): is_boot_sector_ntfs(): Invalid end of sector marker. [ 64.412266][ T6906] ntfs: (device loop0): check_mft_mirror(): $MFT and $MFTMirr (record 0) do not match. Run ntfsfix or chkdsk. [ 64.426053][ T6906] ntfs: (device loop0): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 64.440604][ T6906] ntfs: (device loop0): map_mft_record_page(): Mft record 0xa is corrupt. Run chkdsk. [ 64.452169][ T6906] ntfs: (device loop0): map_mft_record(): Failed with error code 5. [ 64.460786][ T6906] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 64.475310][ T6906] ntfs: (device loop0): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 64.490952][ T6906] ntfs: (device loop0): map_mft_record_page(): Mft record 0x4 is corrupt. Run chkdsk. executing program [ 64.501153][ T6906] ntfs: (device loop0): map_mft_record(): Failed with error code 5. [ 64.509864][ T6906] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0x4 as bad. Run chkdsk. executing program [ 64.672303][ T6916] ================================================================== [ 64.680432][ T6916] BUG: KASAN: use-after-free in ntfs_read_locked_inode+0x49dc/0x58b0 [ 64.688492][ T6916] Read of size 8 at addr ffff888085afee46 by task syz-executor632/6916 [ 64.698156][ T6916] [ 64.700479][ T6916] CPU: 0 PID: 6916 Comm: syz-executor632 Not tainted 5.9.0-rc7-syzkaller #0 [ 64.709126][ T6916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 64.721517][ T6916] Call Trace: [ 64.726278][ T6916] dump_stack+0x198/0x1fd [ 64.731038][ T6916] ? ntfs_read_locked_inode+0x49dc/0x58b0 [ 64.737557][ T6916] ? ntfs_read_locked_inode+0x49dc/0x58b0 [ 64.743295][ T6916] print_address_description.constprop.0.cold+0xae/0x497 [ 64.750298][ T6916] ? ntfs_read_locked_inode+0x49dc/0x58b0 [ 64.756008][ T6916] ? lockdep_hardirqs_off+0x96/0xd0 [ 64.763195][ T6916] ? vprintk_func+0x95/0x1d4 [ 64.768116][ T6916] ? ntfs_read_locked_inode+0x49dc/0x58b0 [ 64.773814][ T6916] ? ntfs_read_locked_inode+0x49dc/0x58b0 [ 64.780563][ T6916] kasan_report.cold+0x1f/0x37 [ 64.785407][ T6916] ? ntfs_read_locked_inode+0x49dc/0x58b0 [ 64.791126][ T6916] ntfs_read_locked_inode+0x49dc/0x58b0 [ 64.796652][ T6916] ? iget5_locked+0x115/0x220 [ 64.801305][ T6916] ? ntfs_test_inode+0x2f0/0x2f0 [ 64.806418][ T6916] ntfs_iget+0x12d/0x180 [ 64.812054][ T6916] ? ntfs_read_locked_inode+0x58b0/0x58b0 [ 64.817765][ T6916] ? generate_default_upcase+0x451/0x600 [ 64.823372][ T6916] ntfs_fill_super+0xb30/0x8560 [ 64.828618][ T6916] ? load_and_init_usnjrnl+0x1180/0x1180 [ 64.834243][ T6916] ? vsprintf+0x30/0x30 [ 64.838375][ T6916] ? wait_for_completion+0x260/0x260 [ 64.843637][ T6916] ? set_blocksize+0x1c1/0x400 [ 64.848378][ T6916] mount_bdev+0x32e/0x3f0 [ 64.852685][ T6916] ? load_and_init_usnjrnl+0x1180/0x1180 [ 64.858314][ T6916] ? ntfs_rl_punch_nolock+0x1d10/0x1d10 [ 64.864823][ T6916] legacy_get_tree+0x105/0x220 [ 64.869574][ T6916] vfs_get_tree+0x89/0x2f0 [ 64.874074][ T6916] path_mount+0x1387/0x20a0 [ 64.878578][ T6916] ? strncpy_from_user+0x2bf/0x3e0 [ 64.883695][ T6916] ? copy_mount_string+0x40/0x40 [ 64.888654][ T6916] ? getname_flags.part.0+0x1dd/0x4f0 [ 64.894042][ T6916] __x64_sys_mount+0x27f/0x300 [ 64.898802][ T6916] ? copy_mnt_ns+0xa60/0xa60 [ 64.903385][ T6916] ? check_preemption_disabled+0x50/0x130 [ 64.909193][ T6916] ? syscall_enter_from_user_mode+0x1d/0x60 [ 64.917181][ T6916] do_syscall_64+0x2d/0x70 [ 64.922143][ T6916] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 64.928206][ T6916] RIP: 0033:0x4494fa [ 64.932520][ T6916] Code: b8 08 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d a3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5a a3 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 64.954780][ T6916] RSP: 002b:00007ffc29f1dec8 EFLAGS: 00000287 ORIG_RAX: 00000000000000a5 [ 64.963324][ T6916] RAX: ffffffffffffffda RBX: 00007ffc29f1df20 RCX: 00000000004494fa [ 64.971327][ T6916] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffc29f1dee0 [ 64.981375][ T6916] RBP: 00007ffc29f1dee0 R08: 00007ffc29f1df20 R09: 0000000000000000 [ 64.989358][ T6916] R10: 0000000000000000 R11: 0000000000000287 R12: 00000000000000ab [ 64.997334][ T6916] R13: 0000000000000004 R14: 0000000000000003 R15: 0000000000000003 [ 65.005300][ T6916] [ 65.007626][ T6916] The buggy address belongs to the page: [ 65.013252][ T6916] page:00000000feeede03 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x85afe [ 65.023564][ T6916] flags: 0xfffe0000000000() [ 65.028058][ T6916] raw: 00fffe0000000000 ffffea0002599848 ffffea0002169dc8 0000000000000000 [ 65.037602][ T6916] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000 [ 65.046173][ T6916] page dumped because: kasan: bad access detected [ 65.052664][ T6916] [ 65.055007][ T6916] Memory state around the buggy address: [ 65.060641][ T6916] ffff888085afed00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 65.068692][ T6916] ffff888085afed80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 65.076824][ T6916] >ffff888085afee00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 65.084854][ T6916] ^ [ 65.091928][ T6916] ffff888085afee80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 65.099996][ T6916] ffff888085afef00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 65.108059][ T6916] ================================================================== [ 65.116804][ T6916] Disabling lock debugging due to kernel taint [ 65.147994][ T6916] Kernel panic - not syncing: panic_on_warn set ... [ 65.155479][ T6916] CPU: 0 PID: 6916 Comm: syz-executor632 Tainted: G B 5.9.0-rc7-syzkaller #0 [ 65.165531][ T6916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 65.175581][ T6916] Call Trace: [ 65.178870][ T6916] dump_stack+0x198/0x1fd [ 65.183203][ T6916] ? ntfs_read_locked_inode+0x4950/0x58b0 [ 65.189264][ T6916] panic+0x382/0x7fb [ 65.193188][ T6916] ? __warn_printk+0xf3/0xf3 [ 65.197776][ T6916] ? preempt_schedule_common+0x59/0xc0 [ 65.203233][ T6916] ? ntfs_read_locked_inode+0x49dc/0x58b0 [ 65.209561][ T6916] ? preempt_schedule_thunk+0x16/0x18 [ 65.215106][ T6916] ? trace_hardirqs_on+0x55/0x220 [ 65.220127][ T6916] ? ntfs_read_locked_inode+0x49dc/0x58b0 [ 65.226115][ T6916] ? ntfs_read_locked_inode+0x49dc/0x58b0 [ 65.231816][ T6916] end_report+0x4d/0x53 [ 65.235973][ T6916] kasan_report.cold+0xd/0x37 [ 65.240643][ T6916] ? ntfs_read_locked_inode+0x49dc/0x58b0 [ 65.246361][ T6916] ntfs_read_locked_inode+0x49dc/0x58b0 [ 65.252002][ T6916] ? iget5_locked+0x115/0x220 [ 65.257040][ T6916] ? ntfs_test_inode+0x2f0/0x2f0 [ 65.261968][ T6916] ntfs_iget+0x12d/0x180 [ 65.266202][ T6916] ? ntfs_read_locked_inode+0x58b0/0x58b0 [ 65.271899][ T6916] ? generate_default_upcase+0x451/0x600 [ 65.277511][ T6916] ntfs_fill_super+0xb30/0x8560 [ 65.282484][ T6916] ? load_and_init_usnjrnl+0x1180/0x1180 [ 65.289155][ T6916] ? vsprintf+0x30/0x30 [ 65.293309][ T6916] ? wait_for_completion+0x260/0x260 [ 65.298589][ T6916] ? set_blocksize+0x1c1/0x400 [ 65.303330][ T6916] mount_bdev+0x32e/0x3f0 [ 65.307638][ T6916] ? load_and_init_usnjrnl+0x1180/0x1180 [ 65.313246][ T6916] ? ntfs_rl_punch_nolock+0x1d10/0x1d10 [ 65.318786][ T6916] legacy_get_tree+0x105/0x220 [ 65.323632][ T6916] vfs_get_tree+0x89/0x2f0 [ 65.328059][ T6916] path_mount+0x1387/0x20a0 [ 65.332665][ T6916] ? strncpy_from_user+0x2bf/0x3e0 [ 65.337951][ T6916] ? copy_mount_string+0x40/0x40 [ 65.342891][ T6916] ? getname_flags.part.0+0x1dd/0x4f0 [ 65.348250][ T6916] __x64_sys_mount+0x27f/0x300 [ 65.352991][ T6916] ? copy_mnt_ns+0xa60/0xa60 [ 65.359769][ T6916] ? check_preemption_disabled+0x50/0x130 [ 65.365726][ T6916] ? syscall_enter_from_user_mode+0x1d/0x60 [ 65.371597][ T6916] do_syscall_64+0x2d/0x70 [ 65.376064][ T6916] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 65.381933][ T6916] RIP: 0033:0x4494fa [ 65.385813][ T6916] Code: b8 08 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d a3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5a a3 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 65.406099][ T6916] RSP: 002b:00007ffc29f1dec8 EFLAGS: 00000287 ORIG_RAX: 00000000000000a5 [ 65.417528][ T6916] RAX: ffffffffffffffda RBX: 00007ffc29f1df20 RCX: 00000000004494fa [ 65.426340][ T6916] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffc29f1dee0 [ 65.434292][ T6916] RBP: 00007ffc29f1dee0 R08: 00007ffc29f1df20 R09: 0000000000000000 [ 65.442255][ T6916] R10: 0000000000000000 R11: 0000000000000287 R12: 00000000000000ab [ 65.450217][ T6916] R13: 0000000000000004 R14: 0000000000000003 R15: 0000000000000003 [ 65.460209][ T6916] Kernel Offset: disabled [ 65.464552][ T6916] Rebooting in 86400 seconds..